Welcome to Splunk Answers, a Q&A forum for users to find answers to questions about deploying, managing, and using Splunk products. Contributors of all backgrounds and levels of expertise come here to find solutions to their issues, and to help other users in the Splunk community with their own questions.

This quick tutorial will help you get started with key features to help you find the answers you need. You will receive 10 karma points upon successful completion!

Refine your search:

how to send newly added events in the data source to the client

0

hi, im new to splunk. I've been playing around with splunk-javascript api for few days. My purpose of using splunk is as a log management system, Where i want it to send any newly added events in the data-source to the client in real-time. I don't want to perform any search operation and return filtered data, but all the data in the data-source. I was able to use search 'all' and retrieve data from splunk. but i couldn't configure the splunk to send newly added log-data to the client as and when it is occurred. Can anyone help me?

1 Answer

It depends a bit on what you mean by "client". You can do real-time searches in Splunk - that is, you issue a search and specify the time range to be "real-time", and Splunk will send back results to you as they come in.

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here. Closing this box indicates that you accept our Cookie Policy.